Security Issues

Konqueror contains a vulnerability that allows a malicious web
site to spoof the address bar entry to a different one, possibly tricking
the user into believing that they actually visited a different site.
Read the detailed advisory.
All versions of Konqueror as included with KDE up to including KDE 3.5.7 are
affected.

KDM can be tricked into allowing a passwordless login for logins
with password configured. Read the detailed advisory.
Versions of KDM as included in KDE 3.3.0 up to including 3.5.7 are affected.

Some Linux/UNIX OS vendors have kindly provided binary packages of
KDE 3.5.6 for some versions of their distribution, and in other cases
community volunteers have done so.
Some of these binary packages are available for free download from KDE's
http or
FTP mirrors.

openSUSE/SUSE Linux
The SUSE KDE packages will be publicly developed in the openSUSE project from
now on. This means that the packages are no longer available via the
supplementary tree from ftp.suse.com, but via the Build Service repositories
from openSUSE. Please read this page for
installation instructions.